[Pkg-mozext-maintainers] replacing Perspectives extension with Convergence?

Daniel Kahn Gillmor dkg at fifthhorseman.net
Mon Sep 12 17:18:10 UTC 2011

On 09/12/2011 01:04 PM, Vagrant Cascadian wrote:

> you can design notaries that use whatever verification model you want.

yep, this is why i said "given the default notary model" :)

> a concern with convergence is that it caches the certificate with no sort of
> expiry (essentially a "Trust On First Use" + notary verification model), but i
> suspect that's fixable.

have you asked moxie what he thinks about exipry?

His talk suggested that one of his concerns was leaking a user's
browsing history to the notaries, and i suspect that expiry is a bit of
a pushback against that; however, given the various tradeoffs, it might
be reasonable to allow a user some control over whether they prefer to
leak some level of browsing patterns to the notaries or whether they
prefer to risk using a public key after it has been compromised and
removed from use.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1030 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-mozext-maintainers/attachments/20110912/6395e342/attachment.pgp>

More information about the Pkg-mozext-maintainers mailing list